SRG-OS-000477-GPOS-00222 Controls

STIG IDVersionTitleProduct
ALMA-09-046000V1R1Successful/unsuccessful uses of the init command in AlmaLinux OS 9 must generate an audit record.
ALMA-09-046220V1R1AlmaLinux OS 9 must generate audit records for any use of the "poweroff" command.
ALMA-09-046330V1R1AlmaLinux OS 9 must generate audit records for any use of the "reboot" command.
ALMA-09-046440V1R1AlmaLinux must generate audit records for any use of the "shutdown" command.
ALMA-09-046550V1R1AlmaLinux OS 9 must enable Linux audit logging for the USBGuard daemon.
ALMA-09-046660V1R1AlmaLinux OS 9 must audit all uses of the delete_module, init_module and finit_module system calls.
ALMA-09-049080V1R1AlmaLinux OS 9 must generate audit records for all account creations, modifications, disabling, and termination events that affect /var/log/faillock.
UBTU-18-010387V2R15The Ubuntu operating system must generate records for successful/unsuccessful uses of init_module or finit_module syscalls.
UBTU-18-010388V2R15The Ubuntu operating system must generate records for successful/unsuccessful uses of delete_module syscall and when unloading dynamic kernel modules.
UBTU-18-010389V2R15The Ubuntu operating system must generate audit records when successful/unsuccessful attempts to use modprobe command.
UBTU-18-010391V2R15The Ubuntu operating system must generate audit records when successful/unsuccessful attempts to use the kmod command.
UBTU-18-010392V2R15The Ubuntu operating system must generate audit records when successful/unsuccessful attempts to use the fdisk command.
UBTU-20-010296V1R9The Ubuntu operating system must generate audit records when successful/unsuccessful attempts to use modprobe command.
UBTU-20-010297V1R9The Ubuntu operating system must generate audit records when successful/unsuccessful attempts to use the kmod command.
UBTU-20-010298V1R9The Ubuntu operating system must generate audit records when successful/unsuccessful attempts to use the fdisk command.
UBTU-24-900730V1R1Ubuntu 24.04 LTS must generate audit records when successful/unsuccessful attempts to use modprobe command.
UBTU-24-900740V1R1Ubuntu 24.04 LTS must generate audit records when successful/unsuccessful attempts to use the kmod command.
UBTU-24-900750V1R1Ubuntu 24.04 LTS must generate audit records when successful/unsuccessful attempts to use the fdisk command.
WN10-AU-000120V2R8The system must be configured to audit System - IPSec Driver failures.
WN11-AU-000120V2R1The system must be configured to audit System - IPsec Driver failures.
UBTU-22-654045V2R1Ubuntu 22.04 LTS must generate audit records for successful/unsuccessful attempts to use the fdisk command.
UBTU-22-654055V2R1Ubuntu 22.04 LTS must generate audit records for successful/unsuccessful attempts to use the kmod command.
UBTU-22-654060V2R1Ubuntu 22.04 LTS must generate audit records for successful/unsuccessful attempts to use modprobe command.
RHEL-09-654185V2R1Successful/unsuccessful uses of the init command in RHEL 9 must generate an audit record.
RHEL-09-654190V2R1Successful/unsuccessful uses of the poweroff command in RHEL 9 must generate an audit record.
RHEL-09-654195V2R1Successful/unsuccessful uses of the reboot command in RHEL 9 must generate an audit record.
RHEL-09-654200V2R1Successful/unsuccessful uses of the shutdown command in RHEL 9 must generate an audit record.
OL09-00-000730V1R1OL 9 must be configured so that successful/unsuccessful uses of the init command generate an audit record.
OL09-00-000735V1R1OL 9 must be configured so that successful/unsuccessful uses of the poweroff command generate an audit record.
OL09-00-000740V1R1OL 9 must be configured so that successful/unsuccessful uses of the reboot command generate an audit record.
OL09-00-000745V1R1OL 9 must be configured so that successful/unsuccessful uses of the shutdown command generate an audit record.
This website is not created by, run, approved, or endorsed by the U.S. Department of Defense. Use at your own risk. This website is created by open-source software.